Ecosyste.ms: Advisories
An open API service providing security vulnerability metadata for many open source software ecosystems.
Low Security Advisories
Browse all Security Advisories for Low
Loading...
Low
Ecosystems: packagist
Packages: remdex/livehelperchat
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
GSA_kwCzR0hTQS1oODZqLTZoNm0tcWpxd80Z7g
Cross-Site Request Forgery in remdex/livehelperchatEcosystems: packagist
Packages: remdex/livehelperchat
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Low
Ecosystems: packagist
Packages: ssddanbrown/bookstack
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
GSA_kwCzR0hTQS13Yzd2LTc3anItNWMzbc0ZDg
bookstack is vulnerable to Cross-Site Request Forgery (CSRF)Ecosystems: packagist
Packages: ssddanbrown/bookstack
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: almost 3 years ago
Low
Ecosystems: go
Packages: github.com/opencontainers/distribution-spec
Source: GitHub Advisory Database
Blast Radius: 4.9
Published: almost 3 years ago
GSA_kwCzR0hTQS1tYzh2LW1ncmYtOGY0bc0XWA
Clarify Content-Type handlingEcosystems: go
Packages: github.com/opencontainers/distribution-spec
Source: GitHub Advisory Database
Blast Radius: 4.9
Published: almost 3 years ago
Low
Ecosystems: go
Packages: github.com/containerd/containerd
Source: GitHub Advisory Database
Blast Radius: 13.3
Published: almost 3 years ago
GSA_kwCzR0hTQS01ajV3LWc2NjUtNW0zNc0XXw
Ambiguous OCI manifest parsingEcosystems: go
Packages: github.com/containerd/containerd
Source: GitHub Advisory Database
Blast Radius: 13.3
Published: almost 3 years ago
Low
Ecosystems: go
Packages: github.com/opencontainers/image-spec
Source: GitHub Advisory Database
Blast Radius: 13.6
Published: almost 3 years ago
GSA_kwCzR0hTQS03N3ZoLXhwbWctNzJxaM0XWQ
Clarify `mediaType` handlingEcosystems: go
Packages: github.com/opencontainers/image-spec
Source: GitHub Advisory Database
Blast Radius: 13.6
Published: almost 3 years ago
Low
Ecosystems: npm
Packages: @openzeppelin/contracts-upgradeable, @openzeppelin/contracts
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
GSA_kwCzR0hTQS13bXB2LWMyanAtajJ4Z80XOg
ERC1155Supply vulnerability in OpenZeppelin ContractsEcosystems: npm
Packages: @openzeppelin/contracts-upgradeable, @openzeppelin/contracts
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Low
Ecosystems: packagist
Packages: snipe/snipe-it
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
GSA_kwCzR0hTQS0yY3FnLXE3am0tajM1Y80XNw
snipe-it is vulnerable to Cross-site ScriptingEcosystems: packagist
Packages: snipe/snipe-it
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: almost 3 years ago
Low
Ecosystems: npm
Packages: bootstrap-table
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: almost 3 years ago
GSA_kwCzR0hTQS1tdzZxLTk4bXAtZzhnOM0W5Q
Cross-site Scripting in bootstrap-tableEcosystems: npm
Packages: bootstrap-table
Source: GitHub Advisory Database
Blast Radius: 9.5
Published: almost 3 years ago
Low
Ecosystems: packagist
Packages: grumpydictator/firefly-iii
Source: GitHub Advisory Database
Blast Radius: 2.4
Published: about 3 years ago
GSA_kwCzR0hTQS1ycWdwLWNjcGgtNXc2Nc0WwA
Cross-Site Request Forgery in firefly-iiiEcosystems: packagist
Packages: grumpydictator/firefly-iii
Source: GitHub Advisory Database
Blast Radius: 2.4
Published: about 3 years ago
Low
Ecosystems: packagist
Packages: pterodactyl/panel
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 3 years ago
GSA_kwCzR0hTQS1tNDlmLWhjeHAtNmhtNs0WsA
pterodactyl/panel CSRF allowing an external page to trigger a user logout eventEcosystems: packagist
Packages: pterodactyl/panel
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 3 years ago
Low
Ecosystems: rubygems
Packages: puma
Source: GitHub Advisory Database
Blast Radius: 20.7
Published: about 3 years ago
GSA_kwCzR0hTQS00OHcyLXJtNjUtNjJ4eM0Whw
Puma with proxy which forwards LF characters as line endings could allow HTTP request smugglingEcosystems: rubygems
Packages: puma
Source: GitHub Advisory Database
Blast Radius: 20.7
Published: about 3 years ago
Low
Ecosystems: go
Packages: github.com/hashicorp/vault
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 3 years ago
GSA_kwCzR0hTQS1xdjk1LWczZ20teDU0Ms0Wfg
Hashicorp Vault Privilege Escalation VulnerabilityEcosystems: go
Packages: github.com/hashicorp/vault
Source: GitHub Advisory Database
Blast Radius: 9.8
Published: about 3 years ago
Low
Ecosystems: go
Packages: github.com/foxcpp/maddy
Source: GitHub Advisory Database
Blast Radius: 0.9
Published: about 3 years ago
GSA_kwCzR0hTQS1xaDU0LTl2YzUtbTlmZ80WgQ
MD5 hash support in github.com/foxcpp/maddyEcosystems: go
Packages: github.com/foxcpp/maddy
Source: GitHub Advisory Database
Blast Radius: 0.9
Published: about 3 years ago
Low
Ecosystems: npm
Packages: @redocly/openapi-cli
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
GSA_kwCzR0hTQS1xMzI0LXE3OTUtMnE1cM0WfA
Path traversal when using `preview-docs` when working dir contains files with question mark `?` in nameEcosystems: npm
Packages: @redocly/openapi-cli
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Low
Ecosystems: go
Packages: k8s.io/kubernetes
Source: GitHub Advisory Database
Blast Radius: 13.4
Published: about 3 years ago
GSA_kwCzR0hTQS12dzQ3LW1yNDQtM2pmOc0V6g
Confused Deputy in KubernetesEcosystems: go
Packages: k8s.io/kubernetes
Source: GitHub Advisory Database
Blast Radius: 13.4
Published: about 3 years ago
Low
Ecosystems: packagist
Packages: grumpydictator/firefly-iii
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpqY3gtOTk5bS0zNWhj
Improper Input Validation in Firefly IIIEcosystems: packagist
Packages: grumpydictator/firefly-iii
Source: GitHub Advisory Database
Blast Radius: 2.3
Published: about 3 years ago
Low
Ecosystems: npm
Packages: @diez/generation
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThjM2YteDVmOS02aDYy
Command injection in @diez/generationEcosystems: npm
Packages: @diez/generation
Source: GitHub Advisory Database
Blast Radius: 3.9
Published: about 3 years ago
Low
Ecosystems: packagist
Packages: mautic/core
Source: GitHub Advisory Database
Blast Radius: 1.7
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg3ZzItd3JycC1yNmgz
Use of a Broken or Risky Cryptographic AlgorithmEcosystems: packagist
Packages: mautic/core
Source: GitHub Advisory Database
Blast Radius: 1.7
Published: about 3 years ago
Low
Ecosystems: pypi
Packages: matrix-synapse
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpqNTMtOGZtdy1mMncy
Adding a private/unlisted room to a community exposes room metadata in an unauthorised manner.Ecosystems: pypi
Packages: matrix-synapse
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: about 3 years ago
Low
Ecosystems: pypi
Packages: matrix-synapse
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN4NGMtcHEzMy00dzNx
Improper authorisation of members discloses room membership to non-membersEcosystems: pypi
Packages: matrix-synapse
Source: GitHub Advisory Database
Blast Radius: 4.4
Published: about 3 years ago
Low
Ecosystems: cargo
Packages: pleaser
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWYzZmctNWo5cC12Y2hj
File exposure in pleaserEcosystems: cargo
Packages: pleaser
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: about 3 years ago
Low
Ecosystems: go
Packages: github.com/argoproj/argo-workflows/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBycWYteHIyai14ZjY1
Potential privilege escalation on Kubernetes >= v1.19 when the Argo Sever is run with `--auth-mode=client`Ecosystems: go
Packages: github.com/argoproj/argo-workflows/v3
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: about 3 years ago
Low
Ecosystems: npm
Packages: @liquity/contracts
Source: GitHub Advisory Database
Blast Radius: 1.5
Published: about 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhoMnAtN3A4Ny1maGdo
Incorrect TCR calculation in batchLiquidateTroves() during Recovery ModeEcosystems: npm
Packages: @liquity/contracts
Source: GitHub Advisory Database
Blast Radius: 1.5
Published: about 3 years ago
Low
Ecosystems: cargo
Packages: hyper
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWYzcGctcXd2Zy1wOTlj
Lenient Parsing of Content-Length Header When Prefixed with Plus SignEcosystems: cargo
Packages: hyper
Source: GitHub Advisory Database
Blast Radius: 14.2
Published: over 3 years ago
Low
Ecosystems: maven
Packages: org.xwiki.platform:xwiki-platform-security-authentication-script
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW03MzgtM3JjNC01eHYz
A user without PR can reset user authentication failures informationEcosystems: maven
Packages: org.xwiki.platform:xwiki-platform-security-authentication-script
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Low
Ecosystems: packagist
Packages: shopware/core, shopware/platform
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc3dzgtcHA5dy03cDMy
Creation of order credits was not validated by acl in admin ordersEcosystems: packagist
Packages: shopware/core, shopware/platform
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: maven
Packages: com.vaadin:vaadin-bom
Source: GitHub Advisory Database
Blast Radius: 9.1
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM5OXItNjd4NC13aGo2
Reflected cross-site scripting in development mode handler in Vaadin 14, 15-19Ecosystems: maven
Packages: com.vaadin:vaadin-bom
Source: GitHub Advisory Database
Blast Radius: 9.1
Published: over 3 years ago
Low
Ecosystems: maven
Packages: com.vaadin:flow-server
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTh2ZnctdjJqdi05aHdj
Reflected cross-site scripting in development mode handler in VaadinEcosystems: maven
Packages: com.vaadin:flow-server
Source: GitHub Advisory Database
Blast Radius: 5.3
Published: over 3 years ago
Low
Ecosystems: rubygems
Packages: bindata
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWhqNTYtODRqdy02N2g2
Potential Denial-of-Service in bindataEcosystems: rubygems
Packages: bindata
Source: GitHub Advisory Database
Blast Radius: 12.9
Published: over 3 years ago
Low
Ecosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 15.9
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW02Y3AtdnhqeC02NWo2
SessionListener can prevent a session from being invalidated breaking logoutEcosystems: maven
Packages: org.eclipse.jetty:jetty-server
Source: GitHub Advisory Database
Blast Radius: 15.9
Published: over 3 years ago
Low
Ecosystems: go
Packages: helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXFxM2oteHA0OS1qNzNm
Plugin archive directory traversal in HelmEcosystems: go
Packages: helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: over 3 years ago
Low
Ecosystems: packagist
Packages: croogo/croogo
Source: GitHub Advisory Database
Blast Radius: 7.9
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpmdmYtcmZtcS1xd2Y4
Croos-site scripting in CroogoEcosystems: packagist
Packages: croogo/croogo
Source: GitHub Advisory Database
Blast Radius: 7.9
Published: over 3 years ago
Low
Ecosystems: maven
Packages: com.squareup:connect
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE0aG0tZndjOS1obXY2
Insecure temporary file used in com.squareup:connectEcosystems: maven
Packages: com.squareup:connect
Source: GitHub Advisory Database
Blast Radius: 3.0
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: swift
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThmeGMtcW02NS12cHhn
Temporary urls leaked via loggingEcosystems: pypi
Packages: swift
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: npm
Packages: @floffah/build
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWpjZ3ItOTY5OC04Mmp4
Improper Neutralization of Special Elements used in a Command ('Command Injection') in @floffah/buildEcosystems: npm
Packages: @floffah/build
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: go
Packages: github.com/tendermint/tendermint
Source: GitHub Advisory Database
Blast Radius: 10.8
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYyNGgtcGpqdi1tY3A2
Denial of service in TendermintEcosystems: go
Packages: github.com/tendermint/tendermint
Source: GitHub Advisory Database
Blast Radius: 10.8
Published: over 3 years ago
Low
Ecosystems: maven
Packages: org.wildfly:wildfly-parent
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXYyd3gtamo2Ni0yaHA3
Cross-site Scripting in WildflyEcosystems: maven
Packages: org.wildfly:wildfly-parent
Source: GitHub Advisory Database
Blast Radius: 6.9
Published: over 3 years ago
Low
Ecosystems: go
Packages: github.com/oauth2-proxy/oauth2-proxy, github.com/oauth2-proxy/oauth2-proxy/v7
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRtZjItZjN3aC1ndmYy
Subdomain checking of whitelisted domains could allow unintended redirects in oauth2-proxyEcosystems: go
Packages: github.com/oauth2-proxy/oauth2-proxy, github.com/oauth2-proxy/oauth2-proxy/v7
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 3 years ago
Low
Ecosystems: go
Packages: github.com/moov-io/customers
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWc2MzYtcTVmYy00cHI3
accounts: Hash account number using SaltEcosystems: go
Packages: github.com/moov-io/customers
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: go
Packages: helm.sh/helm, helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 11.1
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM1MmYtcHE0Ny0ycjlq
plugin.yaml file allows for duplicate entries in helmEcosystems: go
Packages: helm.sh/helm, helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 11.1
Published: over 3 years ago
Low
Ecosystems: go
Packages: helm.sh/helm, helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 12.6
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW01NHItdnJtdi1odzMz
Improper Sanitizing of plugin names in helmEcosystems: go
Packages: helm.sh/helm, helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 12.6
Published: over 3 years ago
Low
Ecosystems: go
Packages: helm.sh/helm, helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWptNTYtNWg2Ni13NDUz
Repository index file allows for duplicates of the same chart entry in helmEcosystems: go
Packages: helm.sh/helm, helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 8.1
Published: over 3 years ago
Low
Ecosystems: go
Packages: helm.sh/helm, helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl2cDUtbTM4dy1qNzc2
Aliases are never checked in helmEcosystems: go
Packages: helm.sh/helm, helm.sh/helm/v3
Source: GitHub Advisory Database
Blast Radius: 13.7
Published: over 3 years ago
Low
Ecosystems: go
Packages: github.com/Masterminds/goutils
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhnMmgtd3g5Ni14Z3hy
RandomAlphaNumeric and CryptoRandomAlphaNumeric are not as random as they should beEcosystems: go
Packages: github.com/Masterminds/goutils
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: go
Packages: github.com/cloudflare/tableflip
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWdtcTItMzlmZi1mNXFn
A failed upgrade may lead to hung goroutinesEcosystems: go
Packages: github.com/cloudflare/tableflip
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: go
Packages: github.com/syncthing/syncthing
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg0NjItODlwZi02cjVo
Crash due to malformed relay protocol messageEcosystems: go
Packages: github.com/syncthing/syncthing
Source: GitHub Advisory Database
Blast Radius: 16.8
Published: over 3 years ago
Low
Ecosystems: go
Packages: github.com/nats-io/nats-server/v2
Source: GitHub Advisory Database
Blast Radius: 33.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd3ajUtM3ZmcS1xOTky
Import loops in account imports, nats-server DoSEcosystems: go
Packages: github.com/nats-io/nats-server/v2
Source: GitHub Advisory Database
Blast Radius: 33.0
Published: over 3 years ago
Low
Ecosystems: go
Packages: github.com/cilium/cilium
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM2NnctaHE1Ni00cTk3
Network policy may be bypassed by some ICMP Echo RequestsEcosystems: go
Packages: github.com/cilium/cilium
Source: GitHub Advisory Database
Blast Radius: 0.0
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXd2anctcDlmNS12cTI4
Segfault in `tf.raw_ops.SparseCountSparseOutput`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXhxZmotY3I2cS1wYzh3
Crash in `tf.transpose` with complex inputsEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1tcTYtcThyMy00OGZt
Crash in `tf.strings.substr` due to `CHECK`-failEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRodnYtN3g5NC03dnE4
Null dereference in Grappler's `TrySimplify`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXF3NWgtN2Y1My14cnA2
Stack overflow in `ParseAttrValue` with nested tensorsEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 17.5
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTJ4Z2oteGhnZi1nZ2p2
Heap buffer overflow in `BandedTriangularSolve`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 17.5
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 17.5
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTlycGMtNXY5cS01cjdm
Incomplete validation in `SparseReshape`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 17.5
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 17.5
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1xNWMtcHJoMy0zZjNo
Invalid validation in `QuantizeAndDequantizeV2`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 17.5
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThybTYtNzVtZi03cjdy
Division by zero in TFLite's implementation of hashtable lookupEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNyY2gtajM4OS01Zjg0
Heap OOB write in TFLiteEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXJmM2gteGd2NS0ycTM5
Division by zero in TFLite's implementation of `DepthwiseConv`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo4cWgtM3hycS1jODI1
Division by zero in TFLite's implementation of `OneHot`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTk3d2YtcDc3Ny04Nmpx
Division by zero in TFLite's implementation of SplitEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBtcHItNTVmai1yMjI5
Division by zero in TFLite's implementation of `SVDF`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY1MnAtaGZqZi13Zzg4
Division by zero in TFLite's implementation of `SpaceToBatchNd`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR2cmYtZmY3di1ocGdy
Division by zero in TFLite's implementation of `EmbeddingLookup`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZmOTQtMzZnNS02OXY4
Division by zero in TFLite's implementation of `DepthToSpace`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNxZ3ctcDRmbS14N2dm
Division by zero in TFLite's convolution codeEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWNmeDctMnhwYy04dzRo
Division by zero in TFLite's implementation of `BatchToSpaceNd`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI0eDYtOGM3bS1odjNm
Heap OOB read in TFLite's implementation of `Minimum` or `Maximum`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTN3NjctcTc4NC02dzdj
Division by zero in TFLite's implementation of `GatherNd`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZmcjQteDhqMi0zcmY5
Division by zero in TFLite's implementation of `TransposeConv`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWo3cm0tOHd3NC14eDJn
Division by zero in TFLite's implementation of `SpaceToDepth`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI2ajctNnc4dy03OTIy
Division by zero in optimized pooling implementations in TFLiteEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW12NzgtZzd3cS1taHA0
Division by zero in padding computation in TFLiteEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXh2am0tZnZ4eC1xM2h2
CHECK-fail due to integer overflowEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl4aDQtMjNxNC12Nndy
Heap buffer overflow and undefined behavior in `FusedBatchNorm`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWM0NXctMnd4ci1wcDUz
Heap OOB read in `tf.raw_ops.Dequantize`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXZxMnItNXh2bS0zaGMz
Segfault in `CTCBeamSearchDecoder`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXg4aDYteGdxeC1qcWdw
Undefined behavior and `CHECK`-fail in `FractionalMaxPoolGrad`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc5ZnYtOTg2NS00cWN2
Heap buffer overflow in `MaxPoolGrad`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZmODktOGo1NC0yOXhm
Heap buffer overflow in `FractionalAvgPoolGrad`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXY2cjYtODRnci05MnJt
Heap buffer overflow in `AvgPool3DGrad`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTdjcXgtOTJocC14Nndo
Heap buffer overflow in `MaxPool3DGradGrad`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTZxZ20tZnY2di1yZnB2
Overflow/denial of service in `tf.raw_ops.ReverseSequence`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTgyOHgtcWMycC13cHJx
Undefined behavior in `MaxPool3DGradGrad`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTl2cG0tcmNmNC05d3F3
Division by 0 in `MaxPoolGradWithArgmax`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTVncWYtNDU2cC00ODM2
Reference binding to nullptr in `SdcaOptimizer`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 21.9
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdocjktdmZoMi03aG02
Memory corruption in `DrawBoundingBoxesV2`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 21.9
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU0NXYtNDJwNy05OGZx
Heap out of bounds read in `MaxPoolGradWithArgmax`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNoOG0tNDgzai03eHht
Heap out of bounds read in `RequantizationRange`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTRwNHAtd3d3OC04ZnY5
Reference binding to null in `ParameterizedTruncatedNormal`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXdwM2MteHc5Zy1ncGNn
Lack of validation in `SparseDenseCwiseMul`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXB2cmMtaGczZi01OHI2
Heap OOB access in `Dilation2DBackpropInput`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXI2cGctcGp3Yy1qNTg1
Null pointer dereference in `SparseFillEmptyRows`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc1ZjYtNzhqci00NjU2
Null pointer dereference in `EditDistance`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXBoODctZnZqci12MzN3
CHECK-fail in `tf.raw_ops.RFFT`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTM2dm0teHczNC14NHBq
CHECK-fail in `tf.raw_ops.IRFFT`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWd2bTQtaDhqMy1yanJx
CHECK-fail in `LoadAndRemapMatrix`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLThndjMtNTdwNi1nMzVy
Heap buffer overflow in `RaggedTensorToTensor`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTU5cTIteDJxYy00Yzk3
Heap OOB access in unicode opsEcosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Low
Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1xaDItOXdycC12eDg0
Heap buffer overflow in `SparseSplit`Ecosystems: pypi
Packages: tensorflow-gpu, tensorflow-cpu, tensorflow
Source: GitHub Advisory Database
Blast Radius: 12.2
Published: over 3 years ago
Statistics
Advisories: 20,468
Packages: 8,969
Repositories: 497
Ecosystems: 12
Packages: 8,969
Repositories: 497
Ecosystems: 12
Filter by Severity
Filter by Ecosystem
Filter by Package
tensorflow-gpu
105
tensorflow-cpu
105
tensorflow
105
concrete5/concrete5
19
moodle/moodle
17
github.com/mattermost/mattermost/server/v8
15
typo3/cms
13
shopware/platform
12
shopware/core
10
phpmyadmin/phpmyadmin
10
nova
9
org.apache.tomcat:tomcat
9
org.jenkins-ci.main:jenkins-core
9
Umbraco.CMS
7
vyper
7
undici
6
wasmtime
6
org.keycloak:keycloak-services
6
ethyca-fides
6
puppet
6
silverstripe/framework
5
rack
5
baserproject/basercms
5
k8s.io/kubernetes
5
magento/community-edition
5
october/backend
5
sweetalert2
5
helm.sh/helm/v3
5
github.com/authzed/spicedb
5
elliptic
5
typo3/cms-core
5
simplesamlphp/simplesamlphp
4
github.com/mattermost/mattermost-server/v6
4
shopware/shopware
4
electron
4
actionpack
4
helm.sh/helm
4
zenml
4
com.vaadin:flow-server
4
github.com/cilium/cilium
4
org.apache.hive:hive-service
3
org.apache.hive:hive-exec
3
org.apache.hive:hive
3
github.com/opencontainers/runc
3
github.com/mattermost/mattermost-server
3
ansible
3
symfony/symfony
3
vantage6
3
typo3/cms-backend
3
bin-links
3
go.etcd.io/etcd/v3
3
glance
3
org.graylog2:graylog2-server
3
github.com/cosmos/cosmos-sdk
3
passenger
3
nautobot
3
@openzeppelin/contracts-upgradeable
3
mattermost-desktop
3
cryptography
3
node-forge
3
wagtail
3
matrix-synapse
3
com.vaadin:vaadin-bom
3
ckb
3
freewvs
2
horizon
2
gradio
2
admidio/admidio
2
github.com/cometbft/cometbft
2
tribalsystems/zenario
2
Flask-AppBuilder
2
october/system
2
org.xwiki.platform:xwiki-platform-oldcore
2
github.com/sigstore/cosign
2
flarum/core
2
plone
2
grumpydictator/firefly-iii
2
ceph-deploy
2
october/cms
2
Zope
2
librenms/librenms
2
ezsystems/ezpublish-kernel
2
angular
2
org.eclipse.jetty:jetty-servlets
2
@apollo/server
2
github.com/answerdev/answer
2
OctoPrint
2
agnai
2
com.inedo.proget:inedo-proget
2
com.ruoyi:ruoyi
2
github.com/mutagen-io/mutagen
2
statamic/cms
2
Flask-Security-Too
2
typo3/cms-frontend
2
typo3/cms-install
2
parse-server
2
github.com/mattermost/mattermost-plugin-jira
2
langchain
2
symfony/security-http
2
org.bouncycastle:bcprov-jdk14
2
aiohttp
2
github.com/goharbor/harbor
2
ezsystems/ezplatform-kernel
2
org.eclipse.jetty:jetty-server
2
github.com/docker/docker
2
github.com/hashicorp/nomad
2
@openzeppelin/contracts
2
Nova
2
gilacms/gila
2
tuf
2
apache-airflow
2
sequoia-openpgp
2
braces
2
github.com/grafana/grafana
2
winter/wn-backend-module
2
org.apache.activemq:activemq-parent
2
microweber/microweber
2
python-keystoneclient
2
salt
2
node-ipc
2
github.com/hashicorp/vault
2
github.com/containerd/containerd
2
org.jenkins-ci.plugins:ec2
2
vodozemac
2
org.jenkins-ci.plugins:wso2id-oauth
2
go.etcd.io/etcd/client/v3
2
activesupport
2
org.jenkins-ci.plugins:repository-connector
2
cargo
2
org.keycloak:keycloak-ldap-federation
2
craftcms/cms
2
next-auth
2
org.eclipse.jetty:jetty-http
2
github.com/nats-io/nats-server/v2
2
org.jenkins-ci.plugins:azure-ad
2
sylius/sylius
2
org.jenkins-ci.plugins:mercurial
2
tools.devnull:build-notifications
2
org.apache.hadoop:hadoop-common
2
org.jenkins-ci.plugins:artifactory
2
s2n-quic
2
github.com/ntbosscher/gobase
2
keystone
2
org.jenkins-ci.plugins:bigpanda-jenkins
2
org.bouncycastle:bcprov-jdk18on
1
org.bouncycastle:bcprov-jdk15to18
1
pyquest
1
org.bouncycastle:bcprov-jdk13
1
commons-fileupload:commons-fileupload
1
fluture-node
1
org.bouncycastle:bcprov-jdk12
1
remdex/livehelperchat
1
org.apache.camel:camel-core
1
UmbracoCMS
1
Simple-Wayland-HotKey-Daemon
1
org.jenkins-ci.plugins:git
1
bitlyshortener
1
electron-packager
1
github.com/bincyber/go-sqlcrypter
1
jquery.terminal
1
com.google.guava:guava
1
org.jenkins-ci.plugins:elasticsearch-query
1
github.com/cheqd/cheqd-node
1
gix-path
1
github.com/opencontainers/distribution-spec
1
github.com/containers/podman/v4
1
io.ratpack:ratpack-session
1
io.ratpack:ratpack-java
1
io.ratpack:ratpack-groovy
1
parsec-service
1
org.postgresql:postgresql
1
org.wildfly.core:wildfly-server
1
org.gradle:gradle-core
1
vxe-table
1
github.com/cloudflare/cfrpki
1
github.com/argoproj/argo-cd
1
com.convertigo.jenkins.plugins:convertigo-mobile-platform
1
pterodactyl/panel
1
tqdm
1
vantage6-server
1
github.com/apache/incubator-answer
1
io.jenkins.plugins:cavisson-ns-nd-integration
1
bref/bref
1
org.jenkins-ci.plugins:gitlab-plugin
1
mautic/core
1
anoncreds-clsignatures
1
mysql:mysql-connector-java
1
github.com/etcd-io/etcd
1
dalli
1
silverstripe/admin
1
ursa
1
org.jenkins-ci.plugins:dimensionsscm
1
com.googlecode.owasp-java-html-sanitizer:owasp-java-html-sanitizer
1
loggerhead
1
dev.personnummer:personnummer
1
personnummer
1
RPLY
1
org.jenkins-ci.plugins:repo
1
@strapi/plugin-content-manager
1
csrf-csrf
1
Filter by Repository
https://github.com/tensorflow/tensorflow
105
https://github.com/concretecms/concretecms
18
https://github.com/moodle/moodle
17
https://github.com/shopware/platform
12
https://github.com/openstack/nova
11
https://github.com/octobercms/october
9
https://github.com/keycloak/keycloak
9
https://github.com/etcd-io/etcd
8
https://github.com/umbraco/Umbraco-CMS
8
https://github.com/vyperlang/vyper
7
https://github.com/TYPO3/typo3
7
https://github.com/phpmyadmin/phpmyadmin
7
https://github.com/eclipse/jetty.project
7
https://github.com/bytecodealliance/wasmtime
6
https://github.com/nodejs/undici
6
https://github.com/rails/rails
6
https://github.com/ethyca/fides
6
https://github.com/xwiki/xwiki-platform
5
https://github.com/rack/rack
5
https://github.com/authzed/spicedb
5
https://github.com/puppetlabs/puppet
5
https://github.com/baserproject/basercms
5
https://github.com/kubernetes/kubernetes
5
https://github.com/indutny/elliptic
5
https://github.com/helm/helm
5
https://github.com/jenkinsci/jenkins
5
https://github.com/sweetalert2/sweetalert2
5
https://github.com/mattermost/mattermost
5
https://github.com/shopware/shopware
4
https://github.com/wintercms/winter
4
https://github.com/electron/electron
4
https://github.com/vaadin/platform
4
https://github.com/vantage6/vantage6
4
https://github.com/cilium/cilium
4
https://github.com/silverstripe/silverstripe-framework
4
https://github.com/apache/tomcat
4
https://github.com/simplesamlphp/simplesamlphp
4
https://github.com/vaadin/flow
3
https://github.com/nervosnetwork/ckb
3
https://github.com/matrix-org/synapse
3
https://github.com/CVEProject/cvelist
3
https://github.com/Graylog2/graylog2-server
3
https://github.com/opencontainers/runc
3
https://github.com/nautobot/nautobot
3
https://github.com/apache/airflow
3
https://github.com/phusion/passenger
3
https://github.com/pyca/cryptography
3
https://gitlab.com/sequoia-pgp/sequoia
3
https://github.com/openstack/keystone
3
https://github.com/digitalbazaar/forge
3
https://github.com/dpgaspar/Flask-AppBuilder
3
https://github.com/zenml-io/zenml
3
https://github.com/Byron/gitoxide
3
https://github.com/wagtail/wagtail
3
https://github.com/cosmos/cosmos-sdk
3
https://github.com/ansible/ansible
3
https://github.com/symfony/symfony
3
https://github.com/TYPO3/TYPO3.CMS
2
https://github.com/Sylius/Sylius
2
https://github.com/octoprint/octoprint
2
https://github.com/opencontainers/distribution-spec
2
https://github.com/rust-lang/cargo
2
https://github.com/apache/druid
2
https://github.com/firefly-iii/firefly-iii
2
https://github.com/mattermost/mattermost-plugin-jira
2
https://github.com/microweber/microweber
2
https://github.com/RIAEvangelist/node-ipc
2
https://github.com/zopefoundation/Zope
2
https://github.com/micromatch/braces
2
https://github.com/containerd/containerd
2
https://github.com/hashicorp/nomad
2
https://github.com/cometbft/cometbft
2
https://github.com/Flask-Middleware/flask-security
2
https://github.com/apache/activemq
2
https://github.com/aio-libs/aiohttp
2
https://github.com/Alexhuszagh/rust-lexical
2
https://github.com/librenms/librenms
2
https://github.com/nextauthjs/next-auth
2
https://github.com/mutagen-io/mutagen
2
https://github.com/quarkusio/quarkus
2
https://github.com/langchain-ai/langchain
2
https://github.com/nats-io/nats-server
2
https://github.com/matrix-org/vodozemac
2
https://github.com/theupdateframework/python-tuf
2
https://github.com/moby/moby
2
https://github.com/bcgit/bc-java
2
https://github.com/openstack/glance
2
https://github.com/craftcms/cms
2
https://github.com/ceph/ceph-deploy
2
https://github.com/ezsystems/ezplatform-kernel
2
https://github.com/parse-community/parse-server
2
https://github.com/aws/s2n-quic
2
https://github.com/schokokeksorg/freewvs
2
https://github.com/answerdev/answer
2
https://github.com/GilaCMS/gila
2
https://github.com/jetty/jetty.project
2
https://github.com/sigstore/cosign
2
https://github.com/openstack/horizon
2
https://github.com/goharbor/harbor
2
https://github.com/agnaistic/agnai
2
https://github.com/gradio-app/gradio
2
https://github.com/ntbosscher/gobase
2
https://github.com/statamic/cms
2
https://github.com/apollographql/apollo-server
2
https://github.com/OpenZeppelin/openzeppelin-contracts
2
https://github.com/saltstack/salt
2
https://github.com/flarum/framework
2
https://github.com/jenkinsci/ec2-plugin
2
https://github.com/auth0/lock
1
https://github.com/jenkinsci/publish-over-ssh-plugin
1
https://github.com/ipython/ipython
1
https://github.com/onelogin/php-saml
1
https://github.com/artifacthub/hub
1
https://github.com/plone/plone.namedfile
1
https://github.com/apache/camel
1
https://github.com/plone/plone.restapi
1
https://github.com/aws/aws-dynamodb-encryption-python
1
https://github.com/knative-extensions/eventing-gitlab
1
https://github.com/sjwall/mdx-mermaid
1
https://github.com/joniles/mpxj
1
https://github.com/biscuit-auth/biscuit-rust
1
https://github.com/jshttp/cookie
1
https://github.com/cloudflare/tableflip
1
https://github.com/seattlerb/ruby_parser
1
https://github.com/mganss/HtmlSanitizer
1
https://github.com/C2FO/fast-csv
1
https://gitlab.com/gitlab-org/cves
1
https://github.com/fog/fog
1
https://github.com/crossplane/crossplane
1
https://github.com/open-webui/open-webui
1
https://github.com/Icinga/ipl-web
1
https://github.com/pterodactyl/panel
1
https://github.com/x-extends/vxe-table
1
https://github.com/ethereum/web3.js
1
https://github.com/tektoncd/pipeline
1
https://github.com/DataDog/datadog-api-client-java
1
https://github.com/fluture-js/fluture-node
1
https://github.com/louislam/uptime-kuma
1
https://github.com/npm/npm-user-validate
1
https://github.com/jenkinsci/coverity-plugin
1
https://github.com/wiremock/wiremock
1
https://github.com/kimai/kimai
1
https://github.com/actions/toolkit
1
https://github.com/SteeltoeOSS/security-advisories
1
https://github.com/aws/aws-encryption-sdk-cli
1
https://github.com/personnummer/python
1
https://github.com/jenkinsci/gitlab-branch-source-plugin
1
https://github.com/risc0/risc0
1
https://github.com/jenkinsci/meliora-testlab-plugin
1
https://github.com/huandu/facebook
1
https://github.com/Qiskit/qiskit-ibm-runtime
1
https://github.com/grpc/grpc-go
1
https://github.com/slsa-framework/slsa-verifier
1
https://github.com/jenkinsci/support-core-plugin
1
https://github.com/RhinoSecurityLabs/CVEs
1
https://github.com/paragonie/random_compat
1
https://github.com/mautic/mautic
1
https://github.com/DataDog/dd-trace-php
1
https://github.com/ory/oathkeeper
1
https://github.com/topgrade-rs/topgrade
1
https://github.com/moment/moment-timezone
1
https://github.com/jenkinsci/parameterized-trigger-plugin
1
https://github.com/petergoldstein/dalli
1
https://github.com/syncthing/syncthing
1
https://github.com/apache/maven-archetype
1
https://github.com/mportuga/eslint-detailed-reporter
1
https://github.com/screetsec/VDD
1
https://github.com/evmos/evmos
1
https://github.com/visionmedia/send
1
https://github.com/DSpace/DSpace
1
https://github.com/Katello/katello
1
https://github.com/urllib3/urllib3
1
https://github.com/isaacs/chownr
1
https://github.com/apache/lucene-solr
1
https://github.com/silverstripe/silverstripe-omnipay
1
https://github.com/IncludeSecurity/safeurl-python
1
https://github.com/ckeditor/ckeditor4
1
https://github.com/argoproj/argo-workflows
1
https://github.com/mapfish/mapfish-print
1
https://github.com/tlsfuzzer/tlslite-ng
1
https://github.com/tm-kn/django-basic-auth-ip-whitelist
1
https://github.com/jcubic/jquery.terminal
1
https://github.com/matrix-org/matrix-appservice-irc
1
https://github.com/snipe/snipe-it
1
https://github.com/jasonraimondi/url-to-png
1
https://github.com/zestedesavoir/zmarkdown
1
https://github.com/plannigan/hyper-bump-it
1
https://github.com/jenkinsci/aws-device-farm-plugin
1
https://github.com/personnummer/java
1
https://github.com/gsemac/Gsemac.Common
1
https://github.com/parallaxsecond/parsec
1
https://github.com/python-pillow/Pillow
1
https://github.com/tokio-rs/tokio
1
https://github.com/personnummer/js
1
https://github.com/sbt/sbt
1
https://github.com/erelsgl/limdu
1
https://github.com/personnummer/rust
1
https://github.com/jenkinsci/snsnotify-plugin
1
https://github.com/authelia/authelia
1